22 matches found
SUSE CVE-2007-3377
Header.pm in Net::DNS before 0.60, a Perl module, 1 generates predictable sequence IDs with a fixed increment and 2 can use the same starting ID for all child processes of a forking server, which allows remote attackers to spoof DNS responses, as originally reported for qpsmtp and spamassassin...
Oracle Linux 4 : perl-Net-DNS (ELSA-2007-0675)
From Red Hat Security Advisory 2007:0675 : An updated perl-Net-DNS package that corrects a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl modules...
Scientific Linux Security Update : perl-Net-DNS on SL3.0.x, SL4.x, SL5.x i386/x86_64
A flaw was found in the way Net::DNS generated the ID field in a DNS query. This predictable ID field could be used by a remote attacker to return invalid DNS data. CVE-2007-3377 A denial of service flaw was found in the way Net::DNS parsed certain DNS requests. A malformed response to a DNS...
SLES9: Security update for perl-Net-DNS
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: perl-Net-DNS For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5016730 within th...
SuSE9 Security Update : perl-Net-DNS (YOU Patch Number 11702)
perl-Net-DNS uses sequential IDs for DNS lookups which could cause problems with some programs like spamassassin. It potentially also simplifies DNS spoofing attacks against perl-Net-DNS. CVE-2007-3377 Additionally, malformed compressed DNS packets could trigger an endless loop in perl-Net-DNS...
Mandriva Update for perl-Net-DNS MDKSA-2007:146 (perl-Net-DNS)
Check for the Version of perl-Net-DNS OpenVAS Vulnerability Test Mandriva Update for perl-Net-DNS MDKSA-2007:146 perl-Net-DNS Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...
Ubuntu: Security Advisory (USN-483-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian DSA-1515-1 : libnet-dns-perl - several vulnerabilities
Several remote vulnerabilities have been discovered in libnet-dns-perl. The Common Vulnerabilities and Exposures project identifies the following problems : It was discovered that libnet-dns-perl generates very weak transaction IDs when sending queries CVE-2007-3377 . This update switches...
[SECURITY] [DSA 1515-1] New libnet-dns-perl packages fix several vulnerabilities
------------------------------------------------------------------------ Debian Security Advisory DSA-1515-1 [email protected] http://www.debian.org/security/ Florian Weimer March 11, 2008 http://www.debian.org/security/faq -...
SuSE 10 Security Update : perl-Net-DNS (ZYPP Patch Number 4046)
perl-Net-DNS used sequential IDs for DNS lookups which could cause problem with some programs like spamassassin. It potentially also simplified DNS spoofing attacks against perl-Net-DNS. CVE-2007-3377 Additionally malformed compressed DNS packets could trigger an endless loop in perl-Net-DNS...
openSUSE 10 Security Update : perl-Net-DNS (perl-Net-DNS-3961)
perl-Net-DNS used sequential IDs for DNS lookups which could cause problem with some programs like spamassassin. It potentially also simplified DNS spoofing attacks against perl-Net-DNS CVE-2007-3377. Additionally malformed compressed DNS packets could trigger an endless loop in perl-Net-DNS...
CentOS 3 / 5 : perl-Net-DNS (CESA-2007:0674)
Updated perl-Net-DNS packages that correct two security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl modules that act as a Domain Name System DNS...
RHEL 3 / 5 : perl-Net-DNS (RHSA-2007:0674)
Updated perl-Net-DNS packages that correct two security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl modules that act as a Domain Name System DNS...
RHEL 4 : perl-Net-DNS (RHSA-2007:0675)
An updated perl-Net-DNS package that corrects a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl modules that act as a Domain Name System DNS...
Mandrake Linux Security Advisory : perl-Net-DNS (MDKSA-2007:146)
A flaw was discovered in the perl Net::DNS module in the way it generated the ID field in a DNS query. Because it is so predictable, a remote attacker could exploit this to return invalid DNS data CVE-2007-3377. A denial of service vulnerability was found in how Net::DNS parsed certain DNS...
USN-483-1: libnet-dns-perl vulnerabilities
Peter Johannes Holzer discovered that the Net::DNS Perl module had predictable sequence numbers. This could allow remote attackers to carry out DNS spoofing, leading to possible machine-in-the-middle attacks. CVE-2007-3377 Steffen Ullrich discovered that the Net::DNS Perl module did not correctly...
perl security update
CentOS Errata and Security Advisory CESA-2007:0675 An updated perl-Net-DNS package that corrects a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl...
perl security update
CentOS Errata and Security Advisory CESA-2007:0674 Updated perl-Net-DNS packages that correct two security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection o...
Moderate: Red Hat Security Advisory: perl-Net-DNS security update
Updated perl-Net-DNS packages that correct two security issues are now available for Red Hat Enterprise Linux 3 and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl modules that act as a Domain Name System DNS...
Moderate: Red Hat Security Advisory: perl-Net-DNS security update
An updated perl-Net-DNS package that corrects a security issue is now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Net::DNS is a collection of Perl modules that act as a Domain Name System DNS...